Computer & Internet Security: A Hands-on Approach

This book is based on the author's 18 years of teaching and research experience. It covers the fundamental principles in Computer and Internet security, including software security, hardware security, network security, web security, and cryptography. Its goal is to help readers understand how various attacks work, what their fundamental causes are, how to defend against them, and how various defense mechanisms work. The book can be used as a textbook for undergraduate and graduate courses. Over 80 universities and colleges adopted the first edition of this book within the first 15 months since it was published in late 2017.

The author strongly believes in "learning by doing", so the book takes a hands-on approach. For each security principle, the book uses a series of hands-on activities to help explain the principle; readers can touch, play with, and experiment with the principle, instead of just reading about it. For instance, if a security principle involves an attack, the book guides readers to actually launch the attack (in a contained environment). In some cases, if a principle involves a security mechanism, such as firewall or Virtual Private Network (VPN), the book guides readers to implement a mini-version of such a mechanism (e.g., mini-firewall or mini-VPN). Readers can learn better from such hands-on activities.

The hands-on activities are based on the author's widely adopted SEED Labs, which have been used by over 1000 institutes in more than 65 countries.

本書基於作者18年的教學和研究經驗，涵蓋了計算機和網際網路安全的基本原則，包括軟體安全、硬體安全、網路安全、網站安全和密碼學。其目標是幫助讀者了解各種攻擊的工作原理、其根本原因、如何防禦以及各種防禦機制的運作方式。本書可作為本科和研究生課程的教材。自2017年底出版以來的前15個月內，已有80多所大學和學院採用了本書的第一版。

作者堅信「實踐學習」，因此本書採用了實踐的方法。對於每個安全原則，本書使用一系列的實踐活動來幫助解釋原則；讀者可以親自觸摸、玩耍和實驗原則，而不僅僅是閱讀。例如，如果一個安全原則涉及攻擊，本書會引導讀者實際發動攻擊（在受控環境中）。在某些情況下，如果一個原則涉及安全機制，如防火牆或虛擬私人網絡（VPN），本書會引導讀者實施一個迷你版本的這樣的機制（例如，迷你防火牆或迷你VPN）。讀者可以從這樣的實踐活動中更好地學習。

這些實踐活動基於作者廣泛採用的SEED實驗室，已經在65個國家的1000多所機構中使用。